Security Automation and Orchestration

Month: January 2017

Please join us for our next live Phantom Tech Session, happening tomorrow at 12:00PM ET / 9:00AM PT. In this Tech Session, we will discuss cyber deception and provide a demonstration of Cymmetria’s MazeRunner platform. We'll also explain the integration between the Phantom security automation and orchestration platform and the Cymmetria platform, including insights into the App development experience from the … Continue reading Phantom Tech Session featuring Cymmetria

We crossed an important milestone in 2016, finishing the year with just over 100 Phantom Apps, or distinct product integrations. Today we stand at ~110 with apps supporting nearly every category of security technology including reputation services, endpoint technologies, sandboxes, firewalls, and common mobile, virtual and cloud-based security solutions. I was recently touting the Phantom … Continue reading Apps Both Deep & Wide

Officially launched in early 2016, the Phantom community has grown tremendously in a relatively short amount of time. The last year also brought a significant number of contributions from the community with individuals outside of Phantom creating Apps & Playbooks, providing product feedback, participating in Tech Session presentations, and interacting with other community members over Slack. These … Continue reading Announcing the 2016 Inductees to the Phantom Community Hall of Fame

It’s a theme that seems common in TED Talks lately, and one we’ve even covered before on the blog. Though this particular talk sheds light on an angle which I hadn’t considered before watching David’s talk. “The number of bank tellers has DOUBLED since the ATM was invented.” It seems so counterintuitive, until you consider … Continue reading Will automation take away all our jobs?

Your existing security infrastructure probably observes lots of scanning, or reconnaissance, activity every day. While a great portion of this activity can be attributed to the noise generated on the Internet, it can also be an early warning signal to a full on attack. A classic problem for security teams is dealing with this type of … Continue reading Playbook: Triage Reconnaissance Alerts